In this site you can find the Ethical Hacking tools that I developed
Web Pentesting Tools
Silence Captcha – https://github.com/revers3everything/silentcaptcha
It is a tool that automates the solving of CAPTCHAs to perform brute-force attacks on login pages. It solves CAPTCHAs on websites protected with Google reCAPTCHA, using Selenium and the noCaptcha extension. It is ideal for educational and research purposes in controlled environments, enabling brute-force attacks and bypassing CAPTCHA protection since the solving process is automated with this bot.
Bypass WAF – https://github.com/revers3everything/bypassWAF
Is a tool that includes two Python scripts designed to perform port scanning with Nmap, changing the IP address after every 10 ports scanned. The second script saves the scan results, categorizing the ports as open, closed, or filtered. This tool requires the Windscribe VPN client to be installed on your Linux system.
DoS pro attack – https://github.com/revers3everything/DoSpro
DoSpro is a tool designed to perform a Denial of Service (DoS) attack by dynamically changing the IP address every 10 seconds to bypass Web Application Firewall (WAF) blocks or bans. This tool leverages Free Windscribe VPN to cycle through different IP addresses and slowhttptest to execute the DoS attack.
cedulas-ec – https://github.com/revers3everything/cedulas-ec
Este repositorio contiene un script en Python que genera todos los posibles números de cédula válidos de Ecuador, utilizando el algoritmo de validación de cédulas ecuatorianas. El script crea un archivo de aproximadamente 1.53 GB que contiene todos los números de cédula válidos (150 millones de cédulas).
AES-PWN – https://github.com/revers3everything/aes-pwn
AES pwn is a simple web-based tool that allows you to encode and decode data using the Advanced Encryption Standard (AES) encryption algorithm. Designed with web hacking purposes in mind, this tool helps ethical hackers and security professionals test web applications by simulating encryption and decryption processes.
Binary Exploitation Tools
ExpWin – https://github.com/revers3everything/expwin
This tool helps automate the process of building exploits to target Buffer overflow vulnerabilities in Windows binaries.
Automotive Pentesting Tools
AutoRFKiller – https://github.com/revers3everything/AutoRFKiller
A brute force attack can be carried out on learning codes/fixed codes since it contains a complete database with the coding and modulation carried out by the all IC chips that emit learning codes/fixed codes. Also, you can test if your car is vulnerable to relay attacks (learning/fixed codes). You can create and send jamming signals to execute RollJam attacks. Finally, you can create an RF signal with the parameters you want, this can be used to inject a backdoor into KES. Also this tool can unlock cars with weak rolling code systems, through brute force and rollback attacks. The second version incorporates a zero day attacks to weak rolling codes, stay tuned!
Hack-iRTOS – https://github.com/revers3everything/hack-iRTOS
I discovered a new RTOS never seen before, this is the iRTOS. This tool allows to backdoorize the firmware of this iRTOS. This tool allows researchers to modify original firmware images by replacing visual assets, such as QR codes, with custom payloads. A typical proof of concept (PoC) might involve replacing the QR code that normally redirects users to the official KIA manual (http://kia.webusermanual.com/COMPACT/General/English/) with a custom QR code that redirects to a user-defined URL, such as a phishing page (for demonstration and awareness purposes only). But you can change whatever image of the head unit display.
IoT Pentesting Tools
RCE Router HG532c – https://github.com/revers3everything/rce-HG532c
This repository contains a proof of concept for gaining a reverse shell on vulnerable HG532c modems through a command injection exploit. The target devices do not have Netcat included in their default BusyBox installation. This method downloads a custom BusyBox binary (which includes Netcat) to the modem and uses it to establish a reverse shell. This is a web exploit though 80 port using python requests module. This vulnerability was discovered through firmware analysis. The firmware was extracted with Bus Pirate v4 with hardware hacking techniques.
ZKTecopwn – https://github.com/revers3everything/zktecopwn
ZKTeco pwn is a powerful tool designed to exploit and interact with ZKTeco biometric devices. This tool allows ethical hackers and security researchers to gain deeper insight into ZKTeco device configurations, manage users, retrieve sensitive data, and perform DoS.
Enhancer fingerprint – https://github.com/revers3everything/enhancedfingerprint
Enhanced Fingerprint is a Python-based tool for fingerprint image enhancement, based on the Fingerprint-Enhancement-Python repository by Utkarsh-Deshmukh. This version adds the functionality to save the final enhanced fingerprint image to a file.
Pentesting Tools
HackTheLan – https://github.com/revers3everything/hackthelan
HackTheLan is an all-in-one automated offensive toolkit designed for pentesters and red teamers who need to perform on-site LAN/WLAN attacks and network reconnaissance efficiently. Built mainly with Python and Scapy, this tool brings together multiple attack and discovery capabilities in a single interface. Utilities ((ipv6 scan, wlan deauth, capture WPA2 handshake, nxc scans, MAC/DHCP spoofing, ARP poisoning, capture NTLM hash, etc)
Exfiltration Tools
Exfiltrate-pc2flipper – https://github.com/revers3everything/exfiltrate-pc2flipper
Exfiltrate-PC2Flipper is a Ducky Script project designed to exfiltrate files from a Windows PC to Flipper Zero’s storage. This is especially useful when the computer restricts direct USB storage connections but allows PowerShell execution. The attack uses fake VIDs and PIDs and also the transmision is through serial port communication.
Games
Policalidalibre – https://github.com/revers3everything/policaidalibre
I developed this game when I was 19 years old. Policaidalibre is a classic-style game developed in C where your mission is simple: help a skydiver land safely by dodging clouds and obstacles on the way down. The game challenges players across three difficulty levels while managing limited lives and aiming for the ground. Can you survive the fall?
